<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=utf-8">
<TITLE>
Release 1.3.1
</TITLE>
</HEAD>
<BODY BGCOLOR="#ffffff">
<H1>Release 1.3.1</H1>
<p>
The following changes were made in this release:
</p>
<H2>Bug fixes:</H2>

<H3>Issue 97: Working Directory for Applications</H3>

<H3>Issue 98: Not possible to cancel check for updates</H3>

<H3>Issue 100: Alerts tab has 2 'Resend...' right click popups</H3>

<H3>Issue 104: Display warning dialog, when no root CA certificate exists</H3>

<H3>Issue 110: Choosing user's language by default, when starting the first time</H3>

<H3>Issue 112: Provide a way to apply language packs on Mac OS</H3>

<H3>Issue 121: Session compare report javascript broken in Firefox 3</H3>

<H3>Issue 123: Cant select https site from Active scan window if theres an http equivalent</H3>

<H3>Issue 127: CSRF token feature does not work in fuzz - added help explanation for partial fix</H3>

<H3>Issue 140: The Display options shouldnt include the advanced or windows manager options</H3>

<H3>SSL Bug which prevented SSL connections from being established in any browser</H3>



<H2>Known issues:</H2>
<H3>Mac OS X: Dynamic SSL and Google Chrome</H3>
Currently Dynamic SSL is not working when using Google Chrome. This is because of an unresolved known issue with Google Chrome and Mac OS X Keychain. When importing OWASP ZAP's Root CA into the keychain and requesting a SSL website, an "Invalid certificate" error message is shown.

<H2>See also</H2>
<table>
<tr><td>&nbsp;&nbsp;&nbsp;&nbsp;</td><td>
<a href="../intro.html">Introduction</a></td><td>the introduction to ZAP</td></tr>
<tr><td>&nbsp;&nbsp;&nbsp;&nbsp;</td><td>
<a href="releases.html">Releases</a></td><td>the full set of releases</td></tr>
<tr><td>&nbsp;&nbsp;&nbsp;&nbsp;</td><td>
<a href="../credits.html">Credits</a></td><td>the people and groups who have made this release possible</td></tr>
</table>
</BODY>
</HTML>
